Security News + Software & Apps

Apple Pushes iOS 7.0.4 Update, Improves App Store Security

Posted on November 14th, 2013 by

Apple has pushed a software update for iOS users with the release of iOS 7.0.4, hardening App Store security and product reliability. The update comes with “bug fixes and improvements, including a fix for an issue that causes FaceTime calls to fail for some users,” according to the update notice.

The update is available for: iPhone 4 and later, iPod touch (5th generation) and later, and iPad 2 and later.

Apple’s iOS 7.0.4 update improves security with bug fixes for an App Store vulnerability (CVE-2013-5193), which impacts App and In-App purchases as they may be completed with insufficient authorization on affected devices.

From Apple’s security bulletin, following is a description of the vulnerability resolved in the iOS 7.0.4 update:

CVE-2013-5193 : A signed-in user may be able to complete a transaction without providing a password when prompted. This issue was addressed by additional enforcement of purchase authorization.

Apple recommends applying the update immediately if possible. iOS users can download and install the iOS 7.0.4 update through iTunes or through your device Settings (select General > Software Update).